D-Link DWC-1000 User Manuals

Table of Contents

• Chapter 1. Introduction

  9
• About this User Manual

  9
• Typographical Conventions

  10
• Chapter 2. Configuring Your Network:

  11
• LAN Configuration

  11
• 2.1.1 LAN Configuration in an IPv6 Network

  14
• 2.1.2 Configuring IPv6 Router Advertisements

  17
• VLAN Configuration

  19
• 2.2.1 Associating VLANs to ports

  20
• Configurable Port: DMZ Setup

  22
• Universal Plug and Play (UPnP)

  23
• Captive Portal

  25
• WLAN global configuration

  25
• 2.6.1 Wireless Discovery configuration

  28
• 2.6.2 AP Profile Global Configuration

  31
• Chapter 3. Connecting to the Internet: WAN Setup

  35
• Internet Setup Wizard

  35
• WAN Configuration

  36
• 3.2.1 WAN Port IP address

  37
• 3.2.2 WAN DNS Servers

  37
• 3.2.3 DHCP WAN

  37
• 3.2.4 PPPoE

  38
• 3.2.5 Russia L2TP and PPTP WAN

  41
• 3.2.6 WAN Configuration in an IPv6 Network

  42
• 3.2.7 Checking WAN Status

  44
• Features with Multiple WAN Links

  45
• 3.3.1 Auto Failover

  46
• 3.3.2 Load Balancing

  46
• 3.3.3 Protocol Bindings

  48
• Routing Configuration

  49
• 3.4.1 Routing Mode

  49
• 3.4.2 Dynamic Routing (RIP)

  52
• 3.4.3 Static Routing

  53
• WAN Port Settings

  54
• Chapter 4. Monitoring Status and Statistics

  56
• System Overview

  56
• 4.1.1 Device Status

  56
• 4.1.2 Resource Utilization

  58
• Traffic Statistics

  60
• 4.2.1 Wired Port Statistics

  60
• Active Connections

  61
• 4.3.1 Sessions through the controller

  61
• 4.3.2 LAN Clients

  63
• 4.3.3 Active VPN Tunnels

  63
• Access Point status

  64
• Global Status

  69
• Wireless Client Status

  75
• AP Management

  83
• Associated Client Status/Statistics

  95
• Chapter 5. Securing the Private Network

  97
• Firewall Rules

  97
• Defining Rule Schedules

  98
• Configuring Firewall Rules

  99
• 5.3.1 Firewall Rule Configuration Examples

  103
• Security on Custom Services

  107
• ALG support

  107
• VPN Passthrough for Firewall

  108
• Application Rules

  109
• Web Content Filtering

  110
• 5.8.1 Content Filtering

  110
• 5.8.2 Approved URLs

  111
• 5.8.3 Blocked Keywords

  112
• 5.8.4 Export Web Filter

  113
• IP/MAC Binding

  114
• 5.10 Protecting from Internet Attacks

  115
• Chapter 6. IPsec / PPTP / L2TP VPN

  117
• VPN Wizard

  119
• Configuring IPsec Policies

  121
• 6.2.1 Extended Authentication (XAUTH)

  124
• 6.2.2 Internet over IPSec tunnel

  124
• Configuring VPN clients

  125
• PPTP / L2TP Tunnels

  125
• 6.4.1 PPTP Tunnel Support

  125
• 6.4.2 L2TP Tunnel Support

  127
• 6.4.3 OpenVPN Support

  128
• Chapter 7. SSL VPN

  131
• Groups and Users

  133
• 7.1.1 Users and Passwords

  139
• Using SSL VPN Policies

  140
• 7.2.1 Using Network Resources

  143
• Application Port Forwarding

  144
• SSL VPN Client Configuration

  146
• 7.4.1 Creating Portal Layouts

  148
• Chapter 8. Advanced Configuration Tools

  151
• USB Device Setup

  151
• Authentication Certificates

  152
• WIDS Security

  154
• WIDS AP configration

  154
• WIDS Client Configuration

  157
• Chapter 9. Administration & Management

  161
• Remote Management

  161
• CLI Access

  161
• SNMP Configuration

  162
• Configuring Time Zone and NTP

  163
• Log Configuration

  164
• 9.5.1 Defining What to Log

  165
• 9.5.2 Sending Logs to E-mail or Syslog

  168
• 9.5.3 Event Log Viewer in GUI

  171
• Backing up and Restoring Configuration Settings

  172
• Upgrading wirelesss controller Firmware

  173
• Dynamic DNS Setup

  174
• Using Diagnostic Tools

  175
• 9.9.1 Ping

  176
• 9.9.2 Trace Route

  176
• 9.9.3 DNS Lookup

  176
• 9.9.4 Router Options

  177
• 9.10 License

  177
• Appendix A. Glossary

  178
• Appendix B. Factory Default Settings

  180
• Figure 1: Setup page for LAN TCP/IP settings

  13
• Figure 2: IPv6 LAN and DHCPv6 configuration

  15
• Figure 3: Configuring the Router Advertisement Daemon

  18
• Figure 4: IPv6 Advertisement Prefix settings

  19
• Figure 5: Adding VLAN memberships to the LAN

  20
• Figure 6: Port VLAN list

  21
• Figure 7: Configuring VLAN membership for a port

  22
• Figure 8: DMZ configuration

  23
• Figure 9: UPnP Configuration

  24
• Figure 10: Active Runtime sessions

  25
• Figure 11: WLAN global configuration

  26
• Figure 12: Configuring the Wireless Discovery

  29
• Figure 13: Wireless Discovery status

  30
• Figure 14: AP Profile Global Configuration

  31
• Figure 15: AP Profile List

  33
• Figure 16: Internet Connection Setup Wizard

  35
• Figure 17: Manual Option1 configuration

  38
• Figure 18: PPPoE configuration for standard ISPs

  39
• Figure 19: Option1 configuration for Japanese Multiple PPPoE (part 1)

  40
• Figure 20: Option1 configuration for Multiple PPPoE (part 2)

  41
• Figure 21: Russia L2TP ISP configuration

  42
• Figure 22: IPv6 WAN Setup page

  43
• Figure 23: Connection Status information of Option1

  45
• Bindings have been defined

  48
• destination network

  49
• Dynamic routing (RIP)

  51
• Figure 27: Static route configuration fields

  54
• Figure 28: Physical WAN port settings

  55
• Figure 29: Device Status display

  57
• Figure 30: Device Status display (continued)

  58
• Figure 31: Resource Utilization statistics

  59
• Figure 32: Resource Utilization data (continued)

  59
• Figure 33: Physical port statistics

  61
• Figure 34: List of current Active Firewall Sessions

  62
• Figure 35: List of LAN hosts

  63
• Figure 36: List of current Active VPN Sessions

  64
• Figure 37: AP status

  65
• Figure 38: Managed AP status

  67
• Figure 39: AP RF Scan Status

  69
• Figure 40: Peer Controller Status

  70
• Figure 41: Peer Controller Configuration Status

  71
• Figure 42: Peer Controller Managed AP Status

  72
• Figure 43: Configuration Receive Status

  74
• Figure 44: Associated Client Status

  75
• Figure 45: Associated Client SSID Status

  76
• Figure 46: Associated Client VAP Status

  77
• Figure 47: Controller Associated Client Status

  78
• Figure 48: Detected Client Status

  79
• Figure 49: Pre-Auth History

  81
• Figure 50: Detected Client Roam History

  82
• Figure 51: Valid Access Point Configuration

  83
• Figure 52: Add a Valid Access Point

  84
• Figure 53: RF configuration

  87
• Figure 54: Channel Plan History

  89
• Figure 55: Manual Channel Plan

  90
• Figure 56: Manual Power Adjustment Plan

  92
• Figure 57: Access Point Software Download

  93
• Figure 58: Local OUI Database

  94
• Fi gu r e 5 9 : M an a ge d A P S t at is t ic s

  95
• Figure 60: WLAN Associated Clients

  96
• Figure 61: List of Available Firewall Rules

  98
• Figure 62: List of Available Schedules to bind to a firewall rule

  99
• (209.156.200.225) to a private DMZ IP address (10.30.30.30)

  102
• action, schedules, and specify source/destination IP addresses as needed.

  103
• Figure 65: Schedule configuration for the above example.

  106
• Figure 66: List of user defined services.

  107
• Figure 67: Available ALG support on the controller

  108
• Figure 68: Passthrough options for VPN tunnels

  109
• Figure 69: List of Available Application Rules showing 4 unique rules

  110
• from being downloaded

  111
• Figure 71: Two trusted domains added to the Approved URLs List

  112
• Figure 72: One keyword added to the block list

  113
• Figure 73: Export Approved URL list

  114
• and logs will be captured

  115
• Figure 75: Protecting the controller and LAN from internet attacks

  116
• connected to the Internet

  117
• IPsec gateway

  118
• Figure 78: VPN Wizard launch screen

  119
• Figure 79: IPsec policy configuration

  122
• Figure 80: IPsec policy configuration continued (Auto policy via IKE)

  123
• Figure 81: IPsec policy configuration continued (Auto / Manual Phase 2)

  124
• Figure 82: PPTP tunnel configuration – PPTP Client

  126
• Figure 83: PPTP VPN connection status

  126
• Figure 84: PPTP tunnel configuration – PPTP Server

  127
• Figure 85: L2TP tunnel configuration – L2TP Server

  128
• Figure 86: OpenVPN configuration

  130
• Figure 87: Example of clientless SSL VPN connections to the DWC-1000

  132
• Figure 88: List of groups

  133
• Figure 89: User group configuration

  134
• Figure 90: SSLVPN Settings

  135
• Figure 91: Group login policies options

  136
• Figure 92: Browser policies options

  137
• Figure 93: IP policies options

  138
• Figure 94: Available Users with login status and associated Group

  139
• Figure 95: User configuration options

  140
• Figure 96: List of SSL VPN polices (Global filter)

  141
• Figure 97: SSL VPN policy configuration

  142
• Figure 98: List of configured resources, which are available to assign to SSL VPN policies

  144
• Figure 99: List of Available Applications for SSL Port Forwarding

  146
• Figure 100: SSL VPN client adapter and access configuration

  147
• Figure 101: Configured client routes only apply in split tunnel mode

  148
• Figure 102: SSL VPN Portal configuration

  150
• Figure 103: USB Device Detection

  152
• Figure 104: Certificate summary for IPsec and HTTPS management

  154
• Fi gu r e 1 0 5: W IDS A P Co nf i g ura t io n

  157
• Figure 106: WIDS Client Configuration

  160
• Figure 107: Remote Management

  161
• Figure 108: SNMP Users, Traps, and Access Control

  162
• Figure 109: SNMP system information for this controller

  163
• Figure 110: Date, Time, and NTP server setup

  164
• Figure 111: Facility settings for Logging

  166
• Figure 112: Log configuration options for traffic through controller

  168
• Figure 113: E-mail configuration as a Remote Logging option

  170
• Figure 114: Syslog server configuration for Remote Logging (continued)

  171
• Figure 115: VPN logs displayed in GUI event viewer

  172
• overwritten and a reboot

  173
• Figure 117: Firmware version information and upgrade option

  174
• Figure 118: Dynamic DNS configuration

  175
• Figure 119: Controller diagnostics tools available in the GUI

  176
• Figure 120: Install License

  177
• . Figure 121: After activating the License

  177